Configuring One-Way SSL Authentication

In the one-way SSL authentication mode, the plug-in authenticates the connected LDAP server. To use one-way SSL authentication, you have to configure a trust store.

1. Create an LDAP connection in TIBCO Business Studio, as described in Creating an LDAP Connection.
2. From the Authentication Mode list, select Simple to enable the one-way SSL authentication.
3. In the Identity Provider field, click to select an Identity Provider resource to log in to the connected LDAP server.
   See Creating an Identity Provider Resource to create an Identity Provider resource.
4. Select the Use SSL check box.
5. In the SSL Client Configuration field, click to select an SSL client Configuration resource. If no SSL client configuration instance is available, click Create Shared Resource to create one:
   1. In the Create SslClientResource Resource Template dialog, specify the resource folder, package, and resource name. Click Finish to create an SSL Client Provider resource.
      The SSL Client Configuration editor is displayed.

      

   2. In the Keystore Provider as Trust Store field, click to select a Keystore Provider resource.
      The selected Keystore Provider resource provides access to a trust store. The plug-in accesses the keystore to verify the identity of the connected LDAP server.

      If no Keystore Provider resource is available, click Create Shared Resource to create one. See Creating a Keystore Provider Resource for more details.